3 matches found
CVE-2025-1490
creationtimestamp| type| source ---|---|--- 2025-03-26 03:25:08+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/8794 2025-03-26 05:04:22+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3llaz4nlwps26 2025-03-26 05:31:41+00:00| seen| https://t.me/cvedetector/21145...
CVE-2025-1490 Smart Maintenance Mode <= 1.5.2 - Reflected Cross-Site Scripting via setstatus Parameter
The Smart Maintenance Mode plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘setstatus’ parameter in all versions up to, and including, 1.5.2 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject...
CVE-2025-1490 Smart Maintenance Mode <= 1.5.2 - Reflected Cross-Site Scripting via setstatus Parameter
The Smart Maintenance Mode plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘setstatus’ parameter in all versions up to, and including, 1.5.2 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject...